technical-research
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No instructions attempting to override agent behavior or bypass safety filters were detected in the skill body or metadata.
- [Data Exposure & Exfiltration] (SAFE): No access to sensitive local file paths or network requests to external domains were identified.
- [Obfuscation] (SAFE): No hidden content, multi-layer Base64, zero-width characters, or homoglyphs were detected.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not install external packages (pip/npm) or execute remote scripts (curl|bash).
- [Privilege Escalation] (SAFE): No commands for acquiring elevated permissions (sudo, chmod, etc.) are present.
- [Persistence Mechanisms] (SAFE): No attempts to modify shell profiles, crontabs, or system services were found.
- [Metadata Poisoning] (SAFE): Skill metadata (name, description, author) is accurate and consistent with the provided functionality.
- [Indirect Prompt Injection] (SAFE): While the template facilitates processing external research, the skill lacks the execution capabilities (subprocess, eval) required to weaponize injected content.
- [Time-Delayed / Conditional Attacks] (SAFE): No date-based or environment-specific triggers gating suspicious operations were detected.
- [Dynamic Execution] (SAFE): No runtime compilation, library injection, or unsafe deserialization patterns were found.
Audit Metadata